Categories: Trojan

How to remove “MSIL/TrojanDownloader.Agent.LGE”?

The MSIL/TrojanDownloader.Agent.LGE is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What MSIL/TrojanDownloader.Agent.LGE virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine MSIL/TrojanDownloader.Agent.LGE?


File Info:
name: A60A50E5DC38B23A1A06.mlwpath: /opt/CAPEv2/storage/binaries/915e7429fa51f3518f1bfe9acd17fc06a20fd981c71144352d4192de42bbeba0crc32: F8FB5011md5: a60a50e5dc38b23a1a0669c658f9c5f9sha1: 74cd3d96dfde78e563d5e51e7bb02b3b197dd6a9sha256: 915e7429fa51f3518f1bfe9acd17fc06a20fd981c71144352d4192de42bbeba0sha512: 98654aa923682401373196a6144ec2e8a25ce4d48585b874097f8b5412cda15a2d3b12b85c87026b4589c78e8f227d56590e1fd1e8d78576bee145828571d3adssdeep: 192:a6exS+hE662q8i8BvbEn8DmlwlJAANgfLWzz8:aPxSjD/AvbE8DmlwSDWzztype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T17032FA06A7E8C739E9BE0B754C73A3410374E685D867D73E1858541F7E6278087A2773sha3_384: 49bba0b5d5ad36c81e9e0c33e84b6d94fa654f2b77888cb05bb7fc4b76186eb2fa6ddec67c95d7f0d974bc4b92a97c35ep_bytes: ff250020400000000000000000000000timestamp: 2074-01-18 21:55:22
Version Info:
Translation: 0x0000 0x04b0Comments: Application Server Command Line Admin ToolCompanyName: Microsoft CorporationFileDescription: Application Server Command Line Admin ToolFileVersion: 10.0.14393.4169InternalName: Evwvi.exeLegalCopyright: © Microsoft Corporation. All rights reserved.LegalTrademarks: OriginalFilename: Evwvi.exeProductName: Internet Information ServicesProductVersion: 10.0.14393.4169Assembly Version: 10.0.14393.4169

MSIL/TrojanDownloader.Agent.LGE also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.MSIL.Seraph.a!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Trojan.GenericKD.39441524
McAfee	RDN/Generic Downloader.x
Malwarebytes	Trojan.Downloader.MSIL.Generic
Sangfor	Trojan.MSIL.Seraph.gen
K7AntiVirus	Trojan-Downloader ( 005908721 )
BitDefender	Trojan.GenericKD.39441524
K7GW	Trojan-Downloader ( 005908721 )
Cybereason	malicious.6dfde7
ESET-NOD32	a variant of MSIL/TrojanDownloader.Agent.LGE
APEX	Malicious
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Downloader.MSIL.Seraph.gen
Alibaba	TrojanDownloader:MSIL/Seraph.d3fe9a0c
MicroWorld-eScan	Trojan.GenericKD.39441524
Avast	Win32:DropperX-gen [Drp]
Tencent	Msil.Trojan-downloader.Agent.Ljtq
Ad-Aware	Trojan.GenericKD.39441524
Emsisoft	Trojan.GenericKD.39441524 (B)
DrWeb	Trojan.DownLoader44.49102
Zillya	Downloader.Agent.Win32.466611
TrendMicro	TROJ_GEN.R002C0PD922
McAfee-GW-Edition	RDN/Generic Downloader.x
Sophos	Mal/Generic-S
Ikarus	Trojan-Downloader.MSIL.Agent
GData	Trojan.GenericKD.39441524
Jiangmin	TrojanDownloader.MSIL.aini
Arcabit	Trojan.Generic.D259D474
ZoneAlarm	HEUR:Trojan-Downloader.MSIL.Seraph.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Trojan/Win.Generic.C5053813
ALYac	Trojan.GenericKD.39441524
MAX	malware (ai score=82)
Cylance	Unsafe
TrendMicro-HouseCall	TROJ_GEN.R002C0PD922
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.74570710.susgen
Fortinet	MSIL/Agent.LFA!tr.dldr
BitDefenderTheta	Gen:NN.ZemsilF.34742.am0@aC9Lcfi
AVG	Win32:DropperX-gen [Drp]
CrowdStrike	win/malicious_confidence_100% (W)